The Basics For Cyber Liability Insurance

Not Having Coverage Could Be Costly Mistake For Any Property

The digital theft of guests’ credit card data or personal dossiers is a vital concern these days. If this happened to your IT system, how would you explain this to your past guests? What steps would you take to remedy this situation, and at what cost?

The simple fact is that when it comes to cyber security, no one can claim to be 100%, ironclad safe insofar as protection of data. If it is not hackers then it could be an internal breach from, say, a disgruntled employee. As a general manager, it is your responsibility to your guests, as well as to your owners, to take both the appropriate precautionary steps in protecting data, but also to consider means of mitigating damages to the company in the event of a loss.

I recently had an opportunity to discuss the issue of cyber liability insurance with Bobby Horn, a principal at Crystal & Company, a national brokerage firm with significant experience in the hotel sector. While his responsibilities encompassed a much broader field, I wanted to drill down on the specifics of cyber insurance.

“It used to be property liability that was the primary issue for hoteliers. Nowadays, cyber liability is equally important,” said Horn. “And remember, the injured party is not going after your third-party partner (often not transparent to the guest), but after you.”

He notes that no two policies are alike. He recommends that when considering a cyber liability policy, you should look at the following aspects:

In calculating the policy costs, underwriters will consider total property revenue, how much data you are storing, credit card transactions, and third-party programs, all in addition to the existing security protocols that you may already have in place. Horn added that the underwriters are getting more proficient at managing these policies as they gain further experience with the risk management issues.

So, should you consider this type of coverage? Given the recent coverage garnered by SynXis and Target, the profile of cyber security is at an all time high. The good news is that coverage costs are not onerous. As a very rough ballpark, Horn suggested that a 200-room, $30 million annual revenue, $1 million policy with a $50,000 deductible limit would result in an annual premium in the range of $10,000 to $15,000. He estimates that about one-third of domestic hotels currently have this coverage. If you do not have cyber liability coverage, perhaps now is the time to ask your insurance broker to consider this addition to your policy. Given all that’s happened of late, I certainly would!

Mr. Larry Mogelonsky - P. Eng.Managing Partner, Hotel Mogel Consulting LimitedOwners, Principals, or PartnersLMA Communications Inc.Bio: One of the world’s most published writer in hospitality, Larry Mogelonsky is the principal of Hotel Mogel Consulting Limited, a Toronto-based consulting practice. His experience encompasses hotel properties around the world, both branded and independent, and ranging from luxury and boutique to select-service. Larry is also on several boards for companies focused on hotel technology. His work includes four books “Are You an Ostrich or a Llama?” (2012), “Llamas Rule” (2013), ...more